game37679-6732-torrent.exe

MALITEK

The application game37679-6732-torrent.exe by MALITEK has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
MALITEK  (signed and verified)

MD5:
c99b0685217c3aafbf2afc6d358a32b6

SHA-1:
9ad0671ecfa897e5fe0210b6813bc4765c68436d

SHA-256:
34416af70ee43009b72c6ee0110eec8f60de9ea1e968ed61b69e27280661e488

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/26/2024 4:39:26 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.InstallMonster (M)
17.3.1.11

File size:
2.9 MB (3,088,824 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\game37679-6732-torrent.exe

Digital Signature
Signed by:

Authority:
COMODO CA Limited

Valid from:
3/12/2016 10:00:00 AM

Valid to:
3/13/2017 9:59:59 AM

Subject:
CN=MALITEK, O=MALITEK, STREET="Gazovikov, 30, 160", L=Tyumen, S=RU, PostalCode=625022, C=RU

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00EE626B9BCE0A4EB8C590A5CF0E187D8D

File PE Metadata
Compilation timestamp:
6/20/1992 9:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
5.12

Entry address:
0x75B000

Entry point:
51, 33, C0, 83, C0, 02, EB, 11, 80, 7C, C1, BD, 07, 0F, B6, 00, 83, E8, 08, 50, 2C, B0, 0B, C0, 50, EB, 12, 0F, 17, 24, 24, CD, 05, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 59, E9, E5, 10, 00, 00, A8, BA, 1B, 21, C7, FF, EB, 10, CD, 74, 9B, FF, 44, 24, 04, EB, 01, C3, 9D, EB, FC, 9C, EB, F3, 68, 2A, B5, B5, 00, EB, F6, 61, 70, B1, FF, E1, E9, 47, 0E, 00, 00, 2E, D4, E9, FA, 0E, 00, 00, D8, BC, 31, 6A, 00, E9, 58, 06, 00, 00, FA, 24, B0, 81, 04, 24, 8C, B8, 32, A1, EB, 02, 2E, C3, 68, 82, BB, B5, 00...
 
[+]

Code size:
2.5 MB (2,608,128 bytes)

Remove game37679-6732-torrent.exe - Powered by Reason Core Security